CVE-2020-35522

Опубликовано: 09 мар. 2021

Источник: debian

EPSS Низкий

Описание

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.1.0+git201212-1		package

Примечания

https://gitlab.com/libtiff/libtiff/-/commit/98a254f5b92cea22f5436555ff7fceb12afee84d
https://gitlab.com/libtiff/libtiff/-/merge_requests/165
Crash in CLI tool, no security impact

EPSS

Процентиль: 13%

0.00044

Низкий

Связанные уязвимости

CVE-2020-35522

CVSS3: 5.5

ubuntu

почти 5 лет назад

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.

CVE-2020-35522

CVSS3: 5.5

redhat

около 5 лет назад

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.

CVE-2020-35522

CVSS3: 5.5

nvd

почти 5 лет назад

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.

CVE-2020-35522

CVSS3: 5.5

msrc

почти 5 лет назад

In LibTIFF there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack.

GHSA-5hqr-x5p5-7g25

CVSS3: 5.5

github

больше 3 лет назад

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.

EPSS

Процентиль: 13%

0.00044

Низкий